Greenplum: Security Vulnerabilities
In versions of Greenplum database prior to 5.28.6 and 6.14.0, greenplum database contains a file path traversal vulnerability leading to information disclosure from the file system. A malicious user can read/write information from the file system using this vulnerability.
CVSS Score
9.1
EPSS Score
0.005
Published
2021-11-19
In versions of Greenplum database prior to 5.28.14 and 6.17.0, certain statements execution led to the storage of sensitive(credential) information in the logs of the database. A malicious user with access to logs can read sensitive(credentials) information about users
CVSS Score
6.5
EPSS Score
0.006
Published
2021-11-19